Open Source
Authentik is an open-source identity provider, which means you can access and modify the source code to suit your needs without licensing fees.
Flexible Authentication Methods
Authentik supports a variety of authentication methods, including traditional username/password, OAuth, SAML, and LDAP, allowing integration with diverse systems.
User Interface and Experience
Provides an intuitive and user-friendly interface for administrators to manage user identities and configure authentication workflows.
Docker Deployment
Easily deployable via Docker, which simplifies the installation and scaling processes, making it adaptable to different environments.
Community Support
Being open-source, authentik benefits from community contributions which can lead to faster improvements and support through forums and community channels.
We have collected here some useful links to help you find out if authentik is good.
Check the traffic stats of authentik on SimilarWeb. The key metrics to look for are: monthly visits, average visit duration, pages per visit, and traffic by country. Moreoever, check the traffic sources. For example "Direct" traffic is a good sign.
Check the "Domain Rating" of authentik on Ahrefs. The domain rating is a measure of the strength of a website's backlink profile on a scale from 0 to 100. It shows the strength of authentik's backlink profile compared to the other websites. In most cases a domain rating of 60+ is considered good and 70+ is considered very good.
Check the "Domain Authority" of authentik on MOZ. A website's domain authority (DA) is a search engine ranking score that predicts how well a website will rank on search engine result pages (SERPs). It is based on a 100-point logarithmic scale, with higher scores corresponding to a greater likelihood of ranking. This is another useful metric to check if a website is good.
The latest comments about authentik on Reddit. This can help you find out how popualr the product is and what people think about it.
Https://goauthentik.io/#comparison They have an enterprise version now (mostly for support and bleeding edge features that later make it into the open source product.) It's pretty easy to self host. I have been doing it for a small site for years and I couldn't even get any other open source solution to work. They are mostly huge with less features. - Source: Hacker News / 8 months ago
I recently set up passkey-only sign ins for a webapp I'm writing using Authentik [0](Python OIDC provider, with quite a nice docker-compose run-up, took only minutes to stand up.) It was surprisingly easy to configure everything so that passkeys are the only thing ever used. If anyone would be interested I could write it up? I was surprised what a nice user flow it is and how easy it was to achieve. [0]... - Source: Hacker News / 12 months ago
I set up Authentik[^1] on my NAS in a docker container and went from there! Just had to add a .well-known webfinger file to my domain that pointed to the Authentik instance and it "just worked" with Tailscale. [^1]: https://goauthentik.io/. - Source: Hacker News / about 1 year ago
Authentik Security | Senior Engineer | US | REMOTE (anywhere) | Full-time Authentik Security (https://goauthentik.io) is the company behind authentik (https://github.com/goauthentik/authentik. - Source: Hacker News / about 1 year ago
> Honest to god, if an IdP like Okta made an Active Directory replacement that ran via container https://goauthentik.io/ can run in docker. It can be paired in with openldap containers, too. - Source: Hacker News / over 1 year ago
> If someone tries to program this themselves, they either do it incorrectly (or not well enough) or keep an expert busy for weeks and weeks. Or they could set up something like https://goauthentik.io/? (Shameless plug: if you use my Docker dashboard, https://lunni.dev/, you can install it in a couple clicks from the Marketplace.) Or any other open source option โ there are dozens at this point. And honestly... - Source: Hacker News / over 1 year ago
I've replaced keycloak with https://goauthentik.io/ 2 years on, no complaints. - Source: Hacker News / over 1 year ago
So, https://goauthentik.io/ actually supports totp with ldap as well. https://docs.goauthentik.io/docs/providers/ldap#binding--bind-modes And the parent makes a good point that OIDC/OAuth does not give group membership. - Source: Hacker News / almost 2 years ago
Absolutely, wouldn't mind OIDC/OAuth. I use https://goauthentik.io/ So, I would love OAuth. Teedy supports only LDAP so that's what I'm using right now. - Source: Hacker News / almost 2 years ago
While authelia is quite cool "infra-as-code" tool, since you have your entire configuration in yaml form, for those not willing to spend a few evenings configuring SSO, there is authentik [1] which features management UI. Offers similar feature set, also self-hostable, but most importantly - simple to set-up. I've spent 8h on authelia deployment, where 30 minutes in authentik would be sufficient. But both are good... - Source: Hacker News / about 2 years ago
Authentik Security | Engineer | US | REMOTE (anywhere) | Full-time Authentik Security (https://goauthentik.io) is the company behind authentik (https://github.com/goauthentik/authentik. - Source: Hacker News / about 2 years ago
If you're looking for a system that has more features, is user friendly, a nice admin ui and easy deployments compared to Keycloak. Please give https://goauthentik.io/ a shot. Not affiliated in any way, just a very happy user. It has -an admin UI - Supports (LDAP, SAML, OAUTH, social logins) - MFA, Passkeys - Application access based on user groups etc. - Source: Hacker News / over 2 years ago
I've been eyeing authentik[1] and authelia[2]. Authelia looks really good to me, but the fact that keycloak has connectors for angular and you need to setup oidc angular plugins with authelia for example made me a little bit wary. But I guess having a config for Keycloak makes it's easier to get started. [1] https://goauthentik.io/ [2] https://www.authelia.com/. - Source: Hacker News / over 2 years ago
I've been searching around for a while now, and struggling with getting Authentik setup on my NAS. I'd like to deploy via Portainer, but getting lost in the documentation just to deploy. Source: over 2 years ago
Personally I went with Keycloak, because it's fairly well documented and also has Docker images available: https://www.keycloak.org/getting-started/getting-started-docker although the fact that they want you to create an "optimized" image yourself and have a long build/setup process on startup instead is slightly annoying: https://www.keycloak.org/server/containers Regardless, with something like mod_auth_openidc... - Source: Hacker News / almost 3 years ago
Hello ! I am hosting a server under NixOS with multiple services, and to simply the identity management, I use authentik (https://goauthentik.io/) which can be compared to keycloak. Everything works fine until I try to enable mastodon to host an instance : authentik returns an error 400 and nothing changes this but disabling mastodon. Does anyone have an idea of what could be the cause of this ? Source: about 3 years ago
My thought is to have the ZAC only be accessible to users connected to OpenZiti, and to have the ZAC behind/to the side of Authentik for SSO. Source: about 3 years ago
What do folks think about authentik[0]? I tried to set up Keycloak but after fiddling with it for awhile before giving up and trying something else. It felt really weird that I was just extracting a tar and running a jar instead of some pre-packaged solution, but that might just be me. Authentik was pretty easy to set up for my homelab, but maybe I'm missing something given all the positive recommendations for... - Source: Hacker News / about 3 years ago
Has anybody been able to get Authentik working with Docker swarm? I'm hitting a brick wall and struggling to work out where the issue is. I can get it up and running using Docker Compose without any issues. Source: about 3 years ago
Cloudflare Tunnels to hide your public IP (no firewall rules allowing traffic to public IP, only private traffic through tunnel), Cloudflare Access to protect services when outside of your network. Optionally Authentik to provide a unified authentication solution to all your services and act as an IDP for Cloudflare Access (or you can use Google, Microsoft login, etc.). Source: about 3 years ago
Last week I looked at more popular solutions such as Authelia and Authentik. Both seem rather trivial too implement, although Authelia doesn't have a management UI. Authentik seems to have a pretty large footprint from what I've read. Source: about 3 years ago
Do you know an article comparing authentik to other products?
Suggest a link to a post with product alternatives.
Is authentik good? This is an informative page that will help you find out. Moreover, you can review and discuss authentik here. The primary details have not been verified within the last quarter, and they might be outdated. If you think we are missing something, please use the means on this page to comment or suggest changes. All reviews and comments are highly encouranged and appreciated as they help everyone in the community to make an informed choice. Please always be kind and objective when evaluating a product and sharing your opinion.